--- # Source: rabbitmq/templates/serviceaccount.yaml apiVersion: v1 kind: ServiceAccount metadata: name: rabbitmq namespace: "rabbitmq" labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm automountServiceAccountToken: true secrets: - name: rabbitmq --- # Source: rabbitmq/templates/config-secret.yaml apiVersion: v1 kind: Secret metadata: name: rabbitmq-config namespace: "rabbitmq" labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm type: Opaque data: rabbitmq.conf: |- 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 --- # Source: rabbitmq/templates/secrets.yaml apiVersion: v1 kind: Secret metadata: name: rabbitmq namespace: "rabbitmq" labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm type: Opaque data: rabbitmq-password: "d282NkZHRjV0RWFJNDU0RA==" rabbitmq-erlang-cookie: "WnFkT1lqR0cyZ29NVWdiaUFwbHRDendabkRrZ0ZqVjU=" --- # Source: rabbitmq/templates/role.yaml kind: Role apiVersion: rbac.authorization.k8s.io/v1 metadata: name: rabbitmq-endpoint-reader namespace: "rabbitmq" labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm rules: - apiGroups: [""] resources: ["endpoints"] verbs: ["get"] - apiGroups: [""] resources: ["events"] verbs: ["create"] --- # Source: rabbitmq/templates/rolebinding.yaml kind: RoleBinding apiVersion: rbac.authorization.k8s.io/v1 metadata: name: rabbitmq-endpoint-reader namespace: "rabbitmq" labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm subjects: - kind: ServiceAccount name: rabbitmq roleRef: apiGroup: rbac.authorization.k8s.io kind: Role name: rabbitmq-endpoint-reader --- # Source: rabbitmq/templates/svc-headless.yaml apiVersion: v1 kind: Service metadata: name: rabbitmq-headless namespace: "rabbitmq" labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm spec: clusterIP: None ports: - name: epmd port: 4369 targetPort: epmd - name: amqp port: 5672 targetPort: amqp - name: dist port: 25672 targetPort: dist - name: http-stats port: 15672 targetPort: stats selector: app.kubernetes.io/name: rabbitmq app.kubernetes.io/instance: rabbitmq publishNotReadyAddresses: true --- # Source: rabbitmq/templates/svc.yaml apiVersion: v1 kind: Service metadata: name: rabbitmq namespace: "rabbitmq" labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm app.kubernetes.io/created-by: eks-workshop spec: type: ClusterIP sessionAffinity: None ports: - name: amqp port: 5672 targetPort: amqp nodePort: null - name: epmd port: 4369 targetPort: epmd nodePort: null - name: dist port: 25672 targetPort: dist nodePort: null - name: http-stats port: 15672 targetPort: stats nodePort: null selector: app.kubernetes.io/name: rabbitmq app.kubernetes.io/instance: rabbitmq --- # Source: rabbitmq/templates/statefulset.yaml apiVersion: apps/v1 kind: StatefulSet metadata: name: rabbitmq namespace: "rabbitmq" labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm spec: serviceName: rabbitmq-headless podManagementPolicy: OrderedReady replicas: 1 updateStrategy: type: RollingUpdate selector: matchLabels: app.kubernetes.io/name: rabbitmq app.kubernetes.io/instance: rabbitmq template: metadata: labels: app.kubernetes.io/name: rabbitmq helm.sh/chart: rabbitmq-11.0.1 app.kubernetes.io/instance: rabbitmq app.kubernetes.io/managed-by: Helm annotations: checksum/config: 2fa2279885865096b88ff79633d02eb6a6e68056a9a64c1b01495731a39d9bec checksum/secret: 65d9a269c4e154b96c8fdc577f211b071f303fb47edf8a0f4c5b0cfe0f2594c7 spec: serviceAccountName: rabbitmq affinity: podAffinity: podAntiAffinity: preferredDuringSchedulingIgnoredDuringExecution: - podAffinityTerm: labelSelector: matchLabels: app.kubernetes.io/name: rabbitmq app.kubernetes.io/instance: rabbitmq namespaces: - "rabbitmq" topologyKey: kubernetes.io/hostname weight: 1 nodeAffinity: securityContext: fsGroup: 1001 terminationGracePeriodSeconds: 120 initContainers: containers: - name: rabbitmq image: public.ecr.aws/bitnami/rabbitmq:3.11.1-debian-11-r0 imagePullPolicy: "IfNotPresent" securityContext: runAsNonRoot: true runAsUser: 1001 lifecycle: preStop: exec: command: - /bin/bash - -ec - | if [[ -f /opt/bitnami/scripts/rabbitmq/nodeshutdown.sh ]]; then /opt/bitnami/scripts/rabbitmq/nodeshutdown.sh -t "120" -d "false" else rabbitmqctl stop_app fi env: - name: BITNAMI_DEBUG value: "false" - name: MY_POD_IP valueFrom: fieldRef: fieldPath: status.podIP - name: MY_POD_NAME valueFrom: fieldRef: fieldPath: metadata.name - name: MY_POD_NAMESPACE valueFrom: fieldRef: fieldPath: metadata.namespace - name: K8S_SERVICE_NAME value: rabbitmq-headless - name: K8S_ADDRESS_TYPE value: hostname - name: RABBITMQ_FORCE_BOOT value: "no" - name: RABBITMQ_NODE_NAME value: "rabbit@$(MY_POD_NAME).$(K8S_SERVICE_NAME).$(MY_POD_NAMESPACE).svc.cluster.local" - name: K8S_HOSTNAME_SUFFIX value: ".$(K8S_SERVICE_NAME).$(MY_POD_NAMESPACE).svc.cluster.local" - name: RABBITMQ_MNESIA_DIR value: "/bitnami/rabbitmq/mnesia/$(RABBITMQ_NODE_NAME)" - name: RABBITMQ_LDAP_ENABLE value: "no" - name: RABBITMQ_LOGS value: "-" - name: RABBITMQ_ULIMIT_NOFILES value: "65536" - name: RABBITMQ_USE_LONGNAME value: "true" - name: RABBITMQ_ERL_COOKIE valueFrom: secretKeyRef: name: rabbitmq key: rabbitmq-erlang-cookie - name: RABBITMQ_LOAD_DEFINITIONS value: "no" - name: RABBITMQ_DEFINITIONS_FILE value: "/app/load_definition.json" - name: RABBITMQ_SECURE_PASSWORD value: "yes" - name: RABBITMQ_USERNAME value: "user" - name: RABBITMQ_PASSWORD valueFrom: secretKeyRef: name: rabbitmq key: rabbitmq-password - name: RABBITMQ_PLUGINS value: "rabbitmq_management, rabbitmq_peer_discovery_k8s, rabbitmq_auth_backend_ldap" envFrom: ports: - name: amqp containerPort: 5672 - name: dist containerPort: 25672 - name: stats containerPort: 15672 - name: epmd containerPort: 4369 livenessProbe: failureThreshold: 6 initialDelaySeconds: 120 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 20 exec: command: - /bin/bash - -ec - rabbitmq-diagnostics -q ping readinessProbe: failureThreshold: 3 initialDelaySeconds: 10 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 20 exec: command: - /bin/bash - -ec - rabbitmq-diagnostics -q check_running && rabbitmq-diagnostics -q check_local_alarms resources: limits: {} requests: {} volumeMounts: - name: configuration mountPath: /bitnami/rabbitmq/conf volumes: - name: configuration secret: secretName: rabbitmq-config items: - key: rabbitmq.conf path: rabbitmq.conf